Requiring HTTPS

Explore how to require HTTPS in Azure Functions to ensure secure data transmission using SSL/TLS encryption. Understand HTTP Strict Transport Security (HSTS) and how to enforce it in your function apps. Learn to configure HTTPS for OpenAPI endpoints and apply security settings through host.json and local.settings.json for reliable and secure serverless applications.

We'll cover the following...

HTTPS basics
- HTTPS in Azure Functions
HSTS basics
- Enforcing HSTS in Azure Functions
Applying HTTPS to OpenAPI

HTTPS basics

HTTPS is a secure version of Hypertext Transfer Protocol (HTTP). When HTTPS is enabled, the information exchanged between the client and the server is encrypted. Only the client and the server can read it because only these participants have access to the encryption and decryption keys.

The keys are enabled by a special certificate that is signed by a recognized certification authority and is granted to a specific domain. The protocol used by the certificate is Secure Socket Layer (SSL), and its updated version is known as Transport Layer Security (TLS).

1.Introduction

2.Azure Functions Basics

3.Azure Functions Triggers and Bindings

4.Using Durable Functions For Long-Running Operations

5.Azure Functions Reliability and Availability

6.Scaling Azure Functions

7.Securing Azure Functions

8.Conclusion

9.Appendix

Requiring HTTPS

HTTPS basics

HTTPS in Azure Functions